All these malicious apps lured users into downloading them by offering additional functionality for their camera or keyboard.
Once the users gave permission, they stole data.
Further, the two remaining infected apps were taken down only after Bloomberg published their article on Autolycos malware.
Autolycos is much more discreet than the now well-known Joker malware.
Autolycos does not launch an invisible web app like Joker does.
This operation is intended to make it harder for Google to differentiate Autolycos infected apps from legitimate ones.
This is exactly why Autolycos remained unidentified for so long and reached over 3 million downloads.
Some also used bots to generate positive reviews on the Play Store.
source: www.techworm.net
